Adding trusted processes

To add one or more processes to the list of trusted processes using the Administration Plug-in:

In the Web Plug-in, go to the Trusted Zone settings in the policy that you want to configure.
1. In the main window of the Kaspersky Security Center Web Console, select Devices → Policies & profiles.
2. Click the policy name you want to configure.
3. In the <Policy name> window that opens, select the Application settings tab.
4. Select the Supplementary section.
5. In the Trusted Zone section, click Settings.
  A Trusted Zone window opens on the Exclusions tab.
Select the Trusted processes tab.
Select the Do not check file backup operations check box to skip scanning of file read operations.
The check box enables or disables the scanning of file read operations if such operations are performed by backup tools installed on the protected device.

If the check box is selected, Kaspersky Embedded Systems Security for Windows skips file read operations performed by backup tools installed on the protected device.

If the check box is cleared, Kaspersky Embedded Systems Security for Windows scans file read operations performed by backup tools installed on the protected device.

The check box is selected by default.
Select the Do not check file activity of the specified processes check box to skip file operation scanning for trusted processes.
The check box enables or disables the scanning of file activity of trusted processes.

If the check box is selected, Kaspersky Embedded Systems Security for Windows skips operations of trusted processes during scanning.

If the check box is cleared, Kaspersky Embedded Systems Security for Windows scans file operations of trusted processes.

By default, the check box is cleared.
Add processes to the trusted list in one of the following ways:
- Manually
  1. Click the Add button.
  2. Enter the name of the executable file of the process that you want to add to the trusted list.
  3. Select a trust criterion:
    - Full path. The application will consider a process trusted if you enter the full path to its executable.
    - Hash. The application will consider a process trusted if you enter a hash for its executable.
    - Full path and hash. The application will consider a process trusted if you enter the full path to its executable and its hash.
  4. Depending on the option selected at the previous step, enter the full path, hash, or the full path and hash for the executable file of the process that you want to add to the trusted list.
  5. In the Exclusion usage scope block, select the check boxes next to the names of the tasks that you want to trust this process.
    To add the selected process to the list of trusted processes, at least one trust criterion must be selected.
  If you made a process trusted for the Applications Launch Control task and created a trusted distribution package from the executable file of this process in the task settings, the Trusted Zone settings will have a higher priority. Kaspersky Embedded Systems Security for Windows considers the process to be trusted, but blocks execution of the executable file of this process.
  1. Click the OK button.
- By importing an XML file with process data
  1. Click the Import button.
  2. In the standard Windows system window that opens, specify the path to the XML file.
  3. Click the Open button.
The trusted processes that have been added are displayed on the Trusted processes tab.
In the Trusted Zone window, click the OK button.